[Registry-dev] Authentication and Authorization implementation

Chathura C. Ekanayake chathura at wso2.com
Fri Sep 28 01:02:14 PDT 2007 

Hi,

I have done the first stage of the authentication and authorization 
implementation based on the User Manager.
As a result now you won't be able to even browse the registry without 
signing in :) as anonymous user doesn't have GET permissions for any 
collection by default.

This is how to configure and start to work with the registry.

1) Configure the following parameters in the web.xml file of the 
wso2registry webapp:

        <init-param>
            <param-name>sqlFilePath</param-name>
            
<param-value>/home/user/usermanager/resources/user.default.sql</param-value>
        </init-param>
        <init-param>
            <param-name>dbURL</param-name>
            
<param-value>jdbc:derby:/home/user/usermanager/umdb</param-value>
        </init-param>
        <init-param>
            <param-name>driver</param-name>
            <param-value>org.apache.derby.jdbc.EmbeddedDriver</param-value>
        </init-param>

user.default.sql file is shipped with the User Manager. I have attached 
it to this mail. You have to create a database using the attached 
create_db.sql file, which is also bundled with the User Manager. We can 
omit this configuration once the User Manager starts to support Data 
Sources.

2) Configure a datasource named jdbc/WSO2RegistryDB in the servlet 
container. If this is not done, Registry will use the HSQL in-memory 
database.

3) Go to the edit UI. Sign in with the user name: admin and 
password:admin. Now you have all the permissions and can perform any action.

4) Add some users and give them required permissions. Then sign in as 
the newly created users and try to perform authorized and unauthorized 
operations.
You will be given an authorization failure message when you try to 
perform unauthorized operations.

Comments...

Thanks,
Chathura
-------------- next part --------------
A non-text attachment was scrubbed...
Name: user.default.sql
Type: text/x-sql
Size: 4754 bytes
Desc: not available
Url : http://wso2.org/pipermail/registry-dev/attachments/20070928/cca0747e/user.default.bin
-------------- next part --------------
A non-text attachment was scrubbed...
Name: create_db.sql
Type: text/x-sql
Size: 2135 bytes
Desc: not available
Url : http://wso2.org/pipermail/registry-dev/attachments/20070928/cca0747e/create_db.bin

More information about the Registry-dev mailing list